MDNC | Malware don't need Coffee
Navigation
Search
FAQ
Contact
Blog
External
References
Actors
Authors
CVEs
EKs (Exploit Kits)
Malware
TDS (Traffic Distribution Systems)
Archive
References
Malware
Ramnit
References:
Ramnit’s Network of Proxy Servers
- 2018-08-05 - Checkpoint
Ramnit
Ngioweb
More Reading:
Inside Jahoo (Otlard.A ?) - A spam Botnet
- 2015-11-28 - MDNC -
Kafeine
Otlard
VirtualDonna
Angler
Nuclear
ProxyBack
Ramnit
SnatchLoader Reloaded
- 2017-10-27 - Arbor -
Dennis Schwarz
Snatch
Ramnit
TA554
Hello, internal name of this loader is sLoad. Appeared May 1st. Payload is the UK focused Ramnit ( fB1oN5frGqf )
- 2018-05-19 - Twitter -
Kafeine
sLoad
Ramnit
TA554
sLoad and Ramnit pairing in sustained campaigns against UK and Italy
- 2018-10-23 - Proofpoint -
Proofpoint Staff
TA554
sLoad
Ramnit
PsiXBot
Gootkit
Snatch
For the records, sLoad is still dropping Ramnit "fB1oN5frGqf" in Italy.
- 2019-11-07 - Twitter -
Kafeine
sLoad
Ramnit
TA554
